$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/61aba975-1752-4022-8ba1-d2e851c60ade.roa File: 61aba975-1752-4022-8ba1-d2e851c60ade.roa (raw, json) Hash identifier: dLxT19fAp2JXPect0X2xjINPLJo8f2ILLNqm5FQBOgs= Subject key identifier: AB:DC:2E:FC:8E:19:73:3C:37:50:1C:20:15:52:53:47:87:74:05:E1 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 3F2BFDF0EB58EE28722BC6CCF2498D8A164FC65D Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/61aba975-1752-4022-8ba1-d2e851c60ade.roa Signing time: Wed 22 Oct 2025 19:53:16 +0000 ROA not before: Wed 22 Oct 2025 19:53:16 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.137.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:2b:fd:f0:eb:58:ee:28:72:2b:c6:cc:f2:49:8d:8a:16:4f:c6:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 22 19:53:16 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=0ec578ea12c842c7a4f48bfa5e08b1a92428cb3e8e044fb64aff458d656ce0a5, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:48:0f:61:96:0c:0e:26:90:b4:11:11:4c:0e: b3:27:00:14:80:60:15:b2:74:4e:09:bd:33:b3:6d: 14:60:06:fb:37:18:6f:9f:d1:14:18:22:f6:d8:41: 17:ec:d3:2c:c9:1b:11:37:5b:c8:ec:a4:fb:47:ac: 65:6b:51:65:af:8a:32:cb:56:61:45:c1:bf:88:ac: 14:b9:ce:4f:08:2c:39:1e:cf:70:96:06:d8:33:d1: 73:96:d4:2d:0c:5b:22:bc:8f:16:8b:85:37:32:be: e6:f1:26:d7:a5:2b:4f:e5:18:37:f5:23:ce:73:50: 79:7d:5f:37:74:57:d1:86:27:ba:c9:44:5c:d6:63: 65:34:7d:05:07:d6:ac:a3:19:49:ec:b1:60:00:ad: c2:5d:a6:83:39:4b:0d:2b:76:25:42:e3:b8:83:de: 43:27:75:39:70:29:88:0a:12:f0:38:dd:56:8a:92: ca:d1:a7:37:e0:0f:27:db:8f:2c:a2:b8:97:5d:fb: 95:3c:7c:f6:07:16:4f:33:93:ef:4d:1e:f8:2d:76: ab:6e:52:ae:a1:93:eb:60:6b:74:f6:66:d1:df:ab: ba:b5:07:f0:0f:1e:68:bc:70:9d:88:84:aa:be:22: b5:9b:ed:79:65:7a:0d:8c:a9:fa:73:93:e9:d4:5c: 06:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:DC:2E:FC:8E:19:73:3C:37:50:1C:20:15:52:53:47:87:74:05:E1 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/61aba975-1752-4022-8ba1-d2e851c60ade.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.137.60.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:73:a1:23:3b:41:3f:0c:0b:54:48:81:82:ce:9d:2d:5a:6f: 19:4d:a9:0b:f8:84:99:90:6e:54:da:2e:71:b9:3a:3b:f3:ed: 0f:f0:b1:a3:3f:5c:22:6d:d1:b0:8c:f0:9a:39:68:9d:30:63: df:24:40:f5:4a:92:0e:ac:55:de:1d:97:14:85:de:15:c3:8a: b5:5e:1c:d6:a6:6d:06:9e:e4:dd:17:85:fd:0a:40:86:e9:b7: 17:aa:13:c1:06:59:f6:a5:ea:94:80:a2:c8:1a:6e:53:17:78: d3:a9:ea:4f:6f:90:3f:a8:b9:05:f0:99:7b:56:dc:87:88:71: bb:9b:4d:b1:86:90:c8:c0:06:68:ff:ed:28:5d:ff:97:d2:fa: c7:7a:0b:9b:0c:1a:ed:95:97:c0:71:d8:1b:e8:fb:55:21:43: 6c:7f:96:a6:c8:b1:bb:08:1d:31:4a:1b:5b:d4:c2:52:42:1b: 89:be:75:9a:bc:01:4d:28:ae:95:c0:f7:74:5a:18:47:ce:b5: c0:d8:bc:96:76:c5:01:9d:b0:db:2a:1d:20:55:5e:49:e4:b3: 6b:37:3b:b4:0a:0c:ab:c4:95:76:f1:21:fc:1b:ca:ae:02:a1: 20:88:1c:24:40:d7:61:e3:f9:91:76:b9:29:6d:ae:e7:6d:b5: a3:d2:ce:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPyv98OtY7ihyK8bM8kmNihZPxl0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDIyMTk1MzE2WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWM1NzhlYTEyYzg0MmM3YTRmNDhiZmE1ZTA4YjFhOTI0 MjhjYjNlOGUwNDRmYjY0YWZmNDU4ZDY1NmNlMGE1MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkSA9hlgwOJpC0ERFMDrMnABSAYBWydE4JvTOzbRRgBvs3 GG+f0RQYIvbYQRfs0yzJGxE3W8jspPtHrGVrUWWvijLLVmFFwb+IrBS5zk8ILDke z3CWBtgz0XOW1C0MWyK8jxaLhTcyvubxJtelK0/lGDf1I85zUHl9Xzd0V9GGJ7rJ RFzWY2U0fQUH1qyjGUnssWAArcJdpoM5Sw0rdiVC47iD3kMndTlwKYgKEvA43VaK ksrRpzfgDyfbjyyiuJdd+5U8fPYHFk8zk+9NHvgtdqtuUq6hk+tga3T2ZtHfq7q1 B/APHmi8cJ2IhKq+IrWb7Xlleg2Mqfpzk+nUXAYXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUq9wu/I4Zczw3UBwgFVJTR4d0BeEwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzYxYWJhOTc1LTE3NTItNDAyMi04YmExLWQyZTg1MWM2MGFkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHYiTwwDQYJKoZIhvcNAQELBQADggEBABpzoSM7QT8MC1RIgYLOnS1abxlN qQv4hJmQblTaLnG5Ojvz7Q/wsaM/XCJt0bCM8Jo5aJ0wY98kQPVKkg6sVd4dlxSF 3hXDirVeHNambQae5N0Xhf0KQIbptxeqE8EGWfal6pSAosgablMXeNOp6k9vkD+o uQXwmXtW3IeIcbubTbGGkMjABmj/7Shd/5fS+sd6C5sMGu2Vl8Bx2Bvo+1UhQ2x/ lqbIsbsIHTFKG1vUwlJCG4m+dZq8AU0orpXA93RaGEfOtcDYvJZ2xQGdsNsqHSBV Xknks2s3O7QKDKvElXbxIfwbyq4CoSCIHCRA12Hj+ZF2uSltrudttaPSzvM= -----END CERTIFICATE-----Generated at Wed Nov 5 16:54:46 2025 by rpki-client